User login

You are here

Feed aggregator

New submitter cccc828 writes: In a new paper Norbert Blum tackles the P=NP question and finds them to be not equal. While this is exciting news (for theoretical computer scientists at least), remember that there is a long list of findings pointing either way.

Reader joshtops writes: The widely circulated memo written by software engineer James Damore has become the talking point across companies in Silicon Valley, and elsewhere. In an interesting take, The Economist on Tuesday argued with the scientific or otherwise assumptions made by Damore. I was wondering what female engineers -- or females in other STEM beats -- think of the memo.

Apple is officially open for business in Hollywood. From a report: The company is telling content makers it wants to spend $1 billion on its own stuff over the next year. That's music to studios' ears, and a tune they have been expecting for some time -- especially after Apple hired two top Sony TV executives in June. We still don't know what Apple wants to do with that content: The Wall Street Journal says Apple wants to make up to 10 "Game of Thrones" -- or "House of Cards"-scale shows, but that's not enough to launch a full-scale subscription service.

tedlistens writes: WordPress has said that it does not censor websites like that of self-proclaimed fascist group Vanguard America. But last night, the group's site was taken offline for violating the company's terms of service. The about-face was likely prompted by Vanguard's participation in last weekend's Unite the Right rallies in Charlottesville, Virginia, during which James Alex Fields drove his car into a crowd, killing one person and injuring 19. Fields has claimed allegiance to Vanguard America; the group denies that Fields was a member. For WordPress to drop a site, even a fascist site, is a very big deal; the same is true of GoDaddy's and Google's decision to drop their registration of neo-Nazi site the Daily Stormer (another site that GoDaddy previously said would be permitted on free speech grounds). WordPress hasn't explained the shift in its approach to the website: the company's user agreement and terms of service have not changed since Charlottesville. That policy, like that of other tech platforms, has long stood by strict neutrality and freedom of expression. That may now be changing.

tedlistens writes: WordPress has said that it does not censor websites like that of self-proclaimed fascist group Vanguard America. But last night, the group's site was taken offline for violating the company's terms of service. The about-face was likely prompted by Vanguard's participation in last weekend's Unite the Right rallies in Charlottesville, Virginia, during which James Alex Fields drove his car into a crowd, killing one person and injuring 19. Fields has claimed allegiance to Vanguard America; the group denies that Fields was a member. For WordPress to drop a site, even a fascist site, is a very big deal; the same is true of GoDaddy's and Google's decision to drop their registration of neo-Nazi site the Daily Stormer (another site that GoDaddy previously said would be permitted on free speech grounds). WordPress hasn't explained the shift in its approach to the website: the company's user agreement and terms of service have not changed since Charlottesville. That policy, like that of other tech platforms, has long stood by strict neutrality and freedom of expression. That may now be changing.

Writing quality database code is a challenge. Most of your commands need to be expressed in SQL, which is a mildly complicated language made more complicated by minor variations across databases. Result sets often have a poor mapping to our business logic’s abstractions, especially in object-oriented languages. Thus, we have Object-Relational-Mapping tools, like Microsoft’s EntityFramework.

With an ORM, you use an object-oriented approach to fetching your objects, and could write something like: IList<HJFRate> rates = db.HJFRates.where(rate=>rate.typeOfUse = typeOfUse) to return all the rows as objects. There’s no concern about SQL injections, no need to process the result set directly. While ORMs can generate poor SQL, or create really inefficient data-access patterns, their ease-of-use is a big selling point.

Which is why Bob Zim was surprised to find this EntityFramework code in a C# web-service:

Pretty much everything here is completely wrong. The obvious issue, blinking like a neon sign, is the obvious SQL injection vulnerability. A vulnerability that, as implied by my “ORM 101” segment above, is completely unnecessary.

Keep in mind, further, that selectedUse is a query, not a data object. Each call to .First() re-executes the query, meaning this takes three round trips to the database. Also, mixing .First() (return the first result or error if there isn’t one) and .FirstOrDefault() (return the first result or a safe default value, typically null) is a bizarre choice.

Then, of course, we actually return the data, not as an object, but as an array of decimal values. Judging from the names of some of these fields, it looks like this code may have to change in 2018.

It’s a lot of bad to cram into one handler for an HTTP request, which brings us to our last problem with this code: controllers shouldn’t be doing data access directly. Normally, breaking that rule is worthy of a slap on the wrist, but in the context of this pile of everything is wrong, it might as well be brought up.

Bob adds:

This code was written by the senior dev on the project as well. He doesn’t work here anymore so I can’t ask him what his reasoning was.. but I did send him an email with the text “WHY!?!?!?” and a screenshot of this code. No response.

New research suggests persistent consumption of energy drinks may predispose young adults to substance use. "Investigators, led by Amelia M. Arria, PhD, School of Public Health, University of Maryland, College Park, found that college students who regularly drink highly caffeinated energy drinks were at increased risk for later use of alcohol, cocaine, or prescription stimulants," reports Medscape. From the report: The research included students enrolled in an ongoing longitudinal study that began in 2004 at a large public university. The analysis included 1099 participants (54% women; 72% non-Hispanic white) who completed at least one annual assessment in which patterns of energy drink consumption were assessed. In interviews, participants were asked which energy drinks they had consumed, and how often, in the past year. They were categorized into three patterns of use: Frequent (52 or more days); Occasional (12 - 51 days); Infrequent (1 - 11 days). The investigators found that sensation seeking, conduct problems, and behavioral dysregulation were all positively associated with a higher probability of energy drink consumption, with the nonuse group having the lowest and the persistent group the highest risk scores. The study was published in the journal Drug and Alcohol Dependence.

Google Allo, the chat app that arrived on the iPhone and Android devices last year, now has a web counterpart. Head of product for Allo and video chat app Duo, Amit Fulay, tweeted: "Allow for web is here! Try it on Chrome today. Get the latest Allo build on Android before giving it a spin." Engadget reports: To give it a go, you'll need to open the Allo app on your device and use that to scan a QR code you can generate at this link. Once you've scanned the code, Allo pulls up your chat history and mirrors all the conversations you have on your phone. Most of Allo's key features, including smart replies, emoji, stickers and most importantly the Google Assistant are all intact here. In fact, this is the first time you can really get the full Google Assistant experience through the web; it's been limited to phones and Google Home thus far.

An anonymous reader writes: Aside from being a schedule 1 drug, scientists haven't fully understood the chemistry behind how mushrooms produce the chemical psilocybin -- until now. A new study may finally lay the groundwork for a medical-grade psilocybin patients can take. Gizmodo reports: "Living things make molecules through a series of chemical reactions, similar to how car makers produce cars on assembly lines. Enzymes act as the workers/robots, speeding up the reactions by helping put the pieces together. Actually making psilocybin requires mapping the biological factory. A 1968 paper (obviously it was in 1968) offered a proposed order of events leading to a finished psilocybin molecule, by adding radioactive elements and watching what happened to them on the assembly line. The researchers thought that maybe tryptophan, the amino acid everyone wrongly says makes you sleepy, was the first piece, which then went through four successive steps to become the finished product. The new study shows that the 1968 paper got the order wrong, and introduces the responsible genes and enzymes, the workers that do the specific task to get the final product. This time around, mapping the factory required sequencing the genomes of two magic mushroom species, Psilocybe cubensis and Psilocybe cyanescens. Then, the researchers found exactly which genes produce the required enzymes and spliced them into E. coli bacteria. Using those enzymes, they were able to rebuild the factory and create their own psilocybin." The study has been published in the German journal Angewandte Chemie.

Intel has confirmed the existence of a new processor family called Ice Lake that will be made on Intel's 10nm+ process. The company published basic information on the Ice Lake architecture on their codename decoder. AnandTech reports: This is an unexpected development as the company has yet to formally detail (let alone launch) the first 10nm Core architecture -- Cannon Lake -- and it's rare these days for Intel to talk more than a generation ahead in CPU architectures. Equally as interesting is the fact that Intel is calling Ice Lake the successor to their upcoming 8th generation Coffee Lake processors, which codename bingo aside, throws some confusion on where the 14nm Coffee Lake and 10nm Cannon Lake will eventually stand. As a refresher, the last few generations of Core have been Sandy Bridge, Ivy Bridge, Broadwell, Haswell, Skylake, with Kaby Lake being the latest and was recently released at the top of the year. Kaby Lake is Intel's third Core product produced using a 14nm lithography process, specifically the second-generation '14 PLUS' (or 14+) version of Intel's 14nm process.
Working purely on lithographic nomenclature, Intel has three processes on 14nm: 14, 14+, and 14++. As shown to everyone at Intel's Technology Manufacturing Day a couple of months ago, these will be followed by a trio of 10nm processes: 10nm, 10nm+ (10+), and 10++. On the desktop, Core processors will go from 14 to 14+ to 14++, such that we move from Skylake to Kaby Lake to Coffee Lake. On the Laptop side, this goes from 14 to 14+ to 14++/10, such that we move from Skylake to Kaby Lake to Coffee Lake like the desktops, but also that at some time during the Coffee Lake generation, Cannon Lake will also be launched for laptops. The next node for both after this is 10+, which will be helmed by the Ice Lake architecture.

Toyota has patented a cloaking device that aims to make big, chunky car pillars transparent. The "apparatuses and methods for making an object appear transparent" which Toyota just patented uses cleverly placed mirrors to bend light around an object making it visible from the other side. The Drive reports: So you're not really seeing through the pillars, you're seeing around them. This is a much cheaper option than adding more cameras and screens all over the place and much more realistic than Harry Potter's invisibility cloak. The patent was filed with the U.S. patent office by Toyota North America, so if Toyota does go forward with this technology, we can probably expect to see it in cars in the U.S.

An anonymous reader quotes a report from Reuters: Amazon is rolling out U.S. pickup points where shoppers can retrieve items immediately after ordering them, shortening delivery times from hours to minutes in its latest move into brick-and-mortar retail. The world's largest online retailer has launched 'Instant Pickup' points around five college campuses, such as the University of California at Berkeley, it said on Tuesday. Amazon has plans to add the program to more sites by the end of the year. Shoppers on Amazon's mobile app can select from several hundred fast-selling items at each location, from snacks and drinks to phone chargers. Amazon employees in a back room then load orders into lockers within two minutes, and customers receive bar codes to access them.

A new report from Liftoff, a Silicon Valley-based mobile app marketing and retargeting firm, says that subscription-based apps may do better if developers charge a higher price for services, rather than setting prices too low to lure users in initially. The Verge reports: The Liftoff report, which analyzed data gathered between June 2016 and June 2017, categorized app subscriptions into low-cost monthly subs ($0.99 to $7), medium ($7 to $20), and high-cost subs ($20 to $50), while also factoring the cost of acquisition per customer. The company found that apps in the medium price range had the highest conversion rate -- 7.16 percent -- and the lowest cost to acquire a subscriber, at just over $106 dollars. This was five times higher than the rate of people who subscribed to apps when the apps were in the low-cost category. This may partly be because streaming media apps, like Netflix and Spotify, have already conditioned people to pay around $10 a month for services. But it also might be attributable to the sunk cost fallacy, Liftoff says: the "cognitive bias people have that makes them stay the course because they have already spent time or resources on it." The report also examines apps that fulfill "need states," like dating apps or cloud services. These have the potential to offer services that customers are willing to pay for, again and again. But, according to Liftoff, utility apps have a much higher install-to-subscriber rate compared to dating apps. Blame those who eventually find love?

After being shutdown by Google and GoDaddy, prominent neo-Nazi website The Daily Stormer has moved their site to the dark web. "The new site is now only available through the Tor network, which allows users to set up their own domains," reports VICE News. "The original site, Dailystormer.com, is now fully offline." From the report: The homepage, as of Tuesday morning, contained articles that make light of the car ramming attack that claimed the life of 32-year-old Heather Heyer; admonish the "Jew media;" liberally employ various racial epithets; and, in a less offensive post, provided an update on which characters are available on Pokemon Go. In a statement, the site's founder promised to bring his site back online. "The Daily Stormer will be live in internet prison with drug dealers, terrorists and perverts, which is where we've been exiled to, for all time," Andrew Anglin said in a statement sent to VICE News. "We should have a real domain online within 24 hours. If it gets shut down again, people will know we are on the black web."

Plants have been "hijacked" to make polio vaccine in a breakthrough with the potential to transform vaccine manufacture, say scientists. From a report: The team at the John Innes Centre, in Norfolk, says the process is cheap, easy and quick. As well as helping eliminate polio, the scientists believe their approach could help the world react to unexpected threats such as Zika virus or Ebola. Experts said the achievement was both impressive and important. The vaccine is an "authentic mimic" of poliovirus called a virus-like particle. Outwardly it looks almost identical to poliovirus but -- like the difference between a mannequin and person -- it is empty on the inside.
It has all the features needed to train the immune system, but none of the weapons to cause an infection.

the_webmaestro writes: A couple of radio stations in Guam conducted an unscheduled test of the Emergency Alert Broadcast System, sending some residents -- already on edge due to the back and forth between the North Korean regime and the tweets made by the President of the United States -- into a panic. From the Guam Homeland Security/Office of Civil Defense Facebook page: "The Offices of Guam Homeland Security and Civil Defense (GHS/OCD), in conjunction with the Mariana Regional Fusion Center (MRFC), our federal and military partners, continue to monitor the recent events surrounding North Korea and their threatening actions. Residents and visitors may have noticed at 12:25 a.m., an unscheduled test of the Emergency Alert Broadcast System (EAS) was triggered from KTWG/KSTO AM. The message read: 'A BROADCAST STATION OR CABLE SYSTEM HAS ISSUED A CIVIL DANGER WARNING FOR THE FOLLOWING COUNTIES/AREAS: Guam, Guam; AT 12:25 AM ON AUG 15, 2017 EFFECTIVE UNTIL 12:40 AM. MESSAGE FROM KTWGKSTO.' The unauthorized test was NOT connected to any emergency, threat or warning. GHS/OCD has worked with KSTO to ensure the human error will not occur again. There is no scheduled test of the EAS or All Hazards Alert Warning System sirens today." In addition, the Guam Power Authority (GPA) reported there were two scheduled outages, for emergency interruption of power, at 2:30 p.m. and 7 p.m., August 14: "Unrelated to the EAS unauthorized test, the Guam Power Authority (GPA) reported there were two scheduled outages, for emergency interruption of power, at 2:30 p.m. and 7 p.m., August 14 for customers located in Talofofo located along along Rte.17, Chalan J. Kindo, Vicente Borja Dr., Felix Dydasco St., Henry Simpson area to bus shelter by Bishop Street and other customers in these locations."

An anonymous reader quotes a report from Bloomberg: Amazon is turning to the debt markets to fund the $13.7 billion acquisition of Whole Foods and power Jeff Bezos's planned conquest of the supermarket business. The world's largest online retailer is selling $16 billion of unsecured bonds in as many as seven parts, according to a person with knowledge of the matter. In a sign of market interest, the longest portion of the offering, a 40-year security may yield 1.45 percentage points above Treasuries, down from initial talk of 1.6 percentage points to 1.65 percentage points, said the person, who asked not to be identified as the deal is private. The sale marks the first bond-market foray since 2014 for Amazon and will support the purchase of the organic-food chain, according to a company statement. The partnership, which rattled the grocery world when announced in June, is expected to reduce prices at Whole Foods, an iconic yet struggling high-end grocery trying to lure more low- and middle-income shoppers. The deal could intensify a price war in an industry beset by razor-thin margins and persistent deflation.

An anonymous reader shares a report: One company is sticking by The Daily Stormer and other far-right websites: the cloud security and performance service Cloudflare. Cloudflare acts as a shield between websites and the outside world, protecting them from hackers and preserving the anonymity of the sites' owners. But Cloudflare is not a hosting service: It does not store website content on its servers. And that fact, as far as the company is concerned, exempts it from judgment over who its clients are -- even if those clients are literally Nazis. In a statement Cloudflare sent to Quartz and other publications yesterday, the company refused to explicitly say it will continue to do business with sites like The Daily Stormer, but pointed out that the content would exist regardless of what Cloudflare does or doesn't do. "Cloudflare is aware of the concerns that have been raised over some sites that have used our network. We find the content on some of these sites repugnant. While our policy is to not comment on any user specifically, we are cooperating with law enforcement in any investigation. Cloudflare is not the host of any website. Cloudflare is a network that provides performance and security services to more than 10% of all Internet requests. Cloudflare terminating any user would not remove their content from the Internet, it would simply make a site slower and more vulnerable to attack."

A small town in the remote north of the Arctic Circle is set to be home to the world's largest data center. From a report: The firm behind the project, Kolos, says the chilled air and abundant hydropower available locally would help it keep its energy costs down. The area, however, suffers the country's highest rate of sick leave from work, which may be related to its past as a mining community. The US-Norwegian company says it has already raised "several million dollars" for the project from Norwegian private investors. However, it is still working with a US investment bank to secure the remaining necessary funds.

An anonymous reader shares a report: Online fund-raising sites are turning their backs on activists looking to offer financial support for James Fields, the man accused of driving his car into counter-protesters at a white-nationalist rally in Charlottesville, Virginia on Saturday. GoFundMe, Kickstarter and other mainstream crowdfunding firms have policies that prohibit hate speech or abuse, the latest example of technology firms making it harder for far-right groups to organize online. Fields is accused of killing one woman and injuring 19 others on Saturday after the rally in Charlottesville turned violent. Supporters of Fields, who was denied bail at a court hearing in Virginia on Monday, have turned to the internet to raise money for his legal defense. GoFundMe, one of the two leading crowdfunding firms, said on Monday it has removed multiple fundraising campaigns for Fields, because the company prohibits the promotion of hate speech and violence.